Privacy Policy

Overview

TermOnMac is built with a minimal data collection principle. Your terminal sessions are end-to-end encrypted — we cannot read, access, or store the content of your terminal sessions. This policy explains what data we do collect and why.

Data We Collect

We collect the following data to provide and improve the service:

• Account Information: Email address and display name when you sign in with GitHub or Google.
• Purchase History: Subscription status and transaction records, managed through Apple's StoreKit framework.
• DeviceCheck Token: A device-level token used to verify legitimate devices and prevent abuse, provided by Apple's DeviceCheck API.
• Usage Data: Usage statistics such as token consumption and session frequency, associated with your account for quota management and service improvement. Usage records are retained on a rolling basis and older periods are automatically expired.
• Connection Metadata: Timestamps, connection duration, IP address, and user agent string for relay management, security monitoring, and abuse prevention. Connection logs are retained for 30 days and then automatically deleted. This does not include the content of your sessions.

How We Use Your Data

• Service Delivery: To authenticate your account, manage your subscription, and establish relay connections between your iPhone and Mac.
• Subscription Management: To verify your subscription status and grant access to Pro/Premium features.
• Security & Abuse Prevention: To verify legitimate devices via DeviceCheck and protect the relay infrastructure from abuse.
• Improvement: To understand usage patterns and improve app performance and reliability.
• Service Operations: Authorized personnel may access account metadata (email, subscription status, usage records, connection logs) for service operations, troubleshooting, and abuse investigation. Access is restricted via authentication tokens. Session content remains end-to-end encrypted and is never accessible to us.

Data We Do NOT Collect

• We do not track you across apps or websites.
• We do not sell, share, or monetize your personal data.
• We do not collect, store, or have access to the content of your terminal sessions on our servers. All session data is end-to-end encrypted using Curve25519 key exchange and AES-256-GCM — only your iPhone and Mac can decrypt it. The macOS companion app may store a local input history log (up to 32 KB per session) on your Mac for session recall purposes. This data never leaves your local devices and can be found in the .remotedev/input-log directory within your project folder.
• We do not use third-party analytics or advertising SDKs.

Third-Party Services

• Apple: We use Apple's StoreKit for in-app purchases and DeviceCheck for device verification. These are governed by Apple's Privacy Policy.
• GitHub / Google: We use GitHub and Google OAuth for account authentication. These are governed by GitHub's Privacy Statement and Google's Privacy Policy.
• Cloudflare: Our relay server is hosted on Cloudflare. Cloudflare may process connection metadata (IP addresses, timestamps) as part of its infrastructure. See Cloudflare's Privacy Policy.

Data Storage & Security

Sensitive credentials (encryption keys, authentication tokens) are stored in the iOS Keychain on iPhone. On Mac, the identity key is stored in a local configuration file with restricted permissions (~/.config/remotedev/). Backend data (account records, subscription status) is stored in Cloudflare KV, a globally distributed key-value store. All communication between your devices and our relay uses TLS encryption, in addition to the end-to-end encryption of session content.

Your Rights

• Access: You can view your account data within the app settings.
• Deletion: You can delete your account using the in-app account deletion feature (Settings > Delete Account). Upon deletion, your account is immediately deactivated and marked for removal. After a 30-day grace period — during which you may contact us to cancel the deletion — your account and all associated data are permanently and irreversibly purged from our servers.
• Data Portability: Contact us if you need a copy of your data.

Children's Privacy

TermOnMac is not intended for use by anyone under the age of 18. We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, please contact us so we can remove it.

Data Breach Notification

In the unlikely event of a data breach that affects your personal information, we will notify affected users via email and/or in-app notification within 72 hours of becoming aware of the breach. The notification will describe the nature of the breach, the data involved, and any steps you should take to protect yourself.

Changes to This Policy

We may update this privacy policy from time to time. If we make significant changes, we will notify you through the app or via email. Continued use of the app after changes constitutes acceptance of the updated policy.

Contact Us

If you have questions about this privacy policy or your data, please contact us at quietlight.work@gmail.com or visit our Support page.